TABLE OF CONTENTS


Note: For Microsoft 365 Defender users, please visit this link to configure your Advanced Delivery Policy.


Section I: Setting up your IP allow list

  1. Log into your mail server admin portal and go into the Admin -> Exchange area.


  2. Click on Admin -> Exchange.


  3. Click on Connection Filter (under Protection section).


  4. Click on Connection Filter, then click the Pencil icon to edit the default connection filter policy.



  5. Under the IP Allow list, click the sign to add the Phish Insight IP address.


  6. On the "Add allowed IP address" screen, add the Phish Insight IP addresses.
    Note: To access this information, log in to Phish Insight, click the chat widget at the lower-right corner, click Allow List, and open Add Phish Insight to your Allow List. Please ensure that you are logged in to your account to see this option. 


Section II: Bypassing your Clutter Folder and Spam Filter

To ensure our messages will bypass your Clutter folder as well as spam filtering within Microsoft's EOP, you can follow the steps below. 

  1. Go to Admin -> Mail -> Mail Flow.

  2. Click the (+) Create New Rule button beneath Mail Flow -> Rules.


  3. Give the rule a name, such as (Bypass Clutter & Spam Filtering by IP Address
    • Click on "More options
    • Add the condition "Apply this rule if....
    • Select "The sender", then click on More Options and select "IP address is in any of these ranges or exactly matches:


  4. Specify the following Phish Insight IP addresses, then click OKPlease refer to Section I Step 6.
  5. Beneath "Do the following", click "Modify the message properties" then "Set a Message Header"


  6. Set the message header to this value:
    Set the message header "X-MS-Exchange-Organization-BypassClutter" to the value "true". NOTE: Both "X-MS-Exchange-Organization-BypassClutter" and "true" are case sensitive.


  7. Add an additional action beneath "Do the following" to "Modify the message properties". Here, click on "Set the spam confidence level (SCL) to..." and select "Bypass Spam Filtering".


  8. Click Save


Section III: Bypassing your Junk Folder for Office 365 mail servers

This rule will allow only simulated phishing emails from us to bypass the Junk folder to ensure that your recipients are receiving simulated phishing emails in their inboxes. 

  1. Go to Admin > Mail > Mail Flow.

  2. Click the (+) Create New Rule button beneath Mail Flow > Rules.


  3. Click More Options.


  4. Give the rule a name, such as Phish Insight - Skip Junk Filtering
    • Click on more options. 
    • Add the condition Apply this rule if..... 
    • Select A message header > includes any of these words
    • On the right side of that rule, you will see Enter text and Enter words... 
    • Click the Enter text and type in the header X-PhishInsightCustom and then click Enter words ... and paste the Customize mail header value from Phish Insight portal then click the big sign.;/ 
      • In Phish Insight portal, go to Settings > Company details and copy the contents of the Key  and Value fields.
  5. Beneath Do the following, click Modify the message properties then Set a Message Header.


  6. Set the message header X-Forefront-Antispam-Report to the value SFV:SKI;


  7. Add an additional action beneath "Do the following" to "Modify the message properties". Here, click on "Set the spam confidence level (SCL) to..." and select "Bypass Spam Filtering". 
  8. Click Save.